Cyber risk quantification and security tooling. Local-first. Measurable. Your data belongs to you.
Cybersecurity shouldn't be exclusive. I believe everyone deserves access to practical, professional grade cybersecurity tools, training, and services, without prohibitive costs or the need for years of technical expertise. My goal is to bridge the gap between complex security practices and real-world usability.
| Project | What it is |
|---|---|
| FORLAS CRQ | Local-first quantitative cyber risk platform built on the FAIR methodology: Monte Carlo simulation, portfolio aggregation, and executive reporting. One executable, one database file you own. (Beta, free) |
| Calibrated Estimation Course | Offline, self-contained HTML tools that train calibrated probability estimation: a practice trainer with Brier scoring plus a nine-module course with a completion certificate. (Open source) |
- Cloud should be a choice. Adopt cloud services because they suit your needs, not because they're your only option.
- Knowledge should be within reach. Practical cybersecurity expertise should be accessible, understandable, and available to everyone.
- Security should be measurable. Effective cybersecurity is built through decisions you can quantify, defend, and improve, not slogans and heat maps.
- Capability over complexity. The best security solutions are the ones people can confidently use.
- Website: riskbydesign.net
- LinkedIn: michael-w-b8b551159
- Email: cyber@riskbydesign.net